Hello,
I've got a Switch that is not booting, I have very few info about it, it seems to be the son of my friend (who gave me this switch) who played with ChoiDuJourNX and killed the Switch ! So after some investigation, I found that the flash content seems to be all f*cked up !
Of course I have no flash backup so the easy way is not an option !
Before doing anything, I've done a backup of the corrupted flash in case I make things worse (if it's even possible).
Now what I've found is the following :
Last firmware that ran on this switch was 9.x (12 burnt fuses)
Lockpick_rcm is not happy about the keyblobs :
The content of the prod.keys if missing quite some stuff :
There are some important keys missing like master_key_xx ...
The biskeydump payload give me some key that seems different from the one that Lockpick get ...
(edit : I tried to get biskeys using fuse_cached.bin and tsec_keys.bin using the website and I gives the same keys as biskeydump)
I tried to use "./linkle keygen -k ./prod.keys" to get some correct keyblob to try to inject them again in the boot0 partition,
but the application seems unable to generate them due to the lack of some important keys in prod.keys file.
So now I'm not sure what to do to make some progress, for now I'm quite blocked because I failed in getting some keys that seems to be needed ...
Any help is more than welcome
I've got a Switch that is not booting, I have very few info about it, it seems to be the son of my friend (who gave me this switch) who played with ChoiDuJourNX and killed the Switch ! So after some investigation, I found that the flash content seems to be all f*cked up !
Of course I have no flash backup so the easy way is not an option !
Before doing anything, I've done a backup of the corrupted flash in case I make things worse (if it's even possible).
Now what I've found is the following :
Last firmware that ran on this switch was 9.x (12 burnt fuses)
Lockpick_rcm is not happy about the keyblobs :
The content of the prod.keys if missing quite some stuff :
There are some important keys missing like master_key_xx ...
The biskeydump payload give me some key that seems different from the one that Lockpick get ...
(edit : I tried to get biskeys using fuse_cached.bin and tsec_keys.bin using the website and I gives the same keys as biskeydump)
I tried to use "./linkle keygen -k ./prod.keys" to get some correct keyblob to try to inject them again in the boot0 partition,
but the application seems unable to generate them due to the lack of some important keys in prod.keys file.
So now I'm not sure what to do to make some progress, for now I'm quite blocked because I failed in getting some keys that seems to be needed ...
Any help is more than welcome
Last edited by sylver78,